ComboFix 10-09-17.04 - Lulù 18/09/2010 12:46:02.1.2 - x86 MINIMAL
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.39.1040.18.3071.2297 [GMT 2:00]
Eseguito da: c:\users\Lulù\Desktop\pippo.exe
* Creato nuovo punto di ripristino
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\system32\ps2.bat
.
((((((((((((((((((((((((( Files Creati Da 2010-08-18 al 2010-09-18 )))))))))))))))))))))))))))))))))))
.
2010-09-18 10:50 . 2010-09-18 10:50 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-09-18 09:57 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-18 08:52 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-09-18 08:52 . 2010-09-18 08:52 -------- d-----w- c:\programdata\Malwarebytes
2010-09-18 08:52 . 2010-09-18 08:52 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-09-18 08:52 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-09-16 16:07 . 2010-09-16 16:07 797200 begin_of_the_skype_highlighting 07 797200 end_of_the_skype_highlighting ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav9exec\9.0.0.459\updater.dll
2010-09-16 16:07 . 2010-09-16 16:07 797272 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\updater.dll
2010-09-15 14:51 . 2010-09-15 14:51 -------- d-----w- c:\program files\Trend Micro
2010-09-04 20:45 . 2010-09-04 20:45 -------- d-----w- c:\programdata\Messenger Plus!
2010-09-04 20:45 . 2010-09-04 20:45 -------- d-----w- c:\program files\Messenger Plus! Live
2010-09-04 08:33 . 2010-09-04 08:33 -------- d-----w- c:\programdata\ATI
2010-09-04 08:09 . 2010-09-04 08:09 -------- d-----w- C:\ATI
2010-09-04 08:07 . 2010-09-04 08:07 -------- d-----w- C:\AMD
2010-09-03 21:56 . 2010-09-04 08:33 -------- d-----w- c:\program files\ATI Technologies
2010-09-03 21:56 . 2010-09-03 21:56 -------- d-----w- c:\program files\ATI
2010-09-03 21:54 . 2010-08-04 01:49 356352 ----a-w- c:\windows\system32\atipdlxx.dll
2010-09-03 21:54 . 2010-08-04 01:28 4021760 ----a-w- c:\windows\system32\atiumdag.dll
2010-09-03 21:54 . 2010-08-04 01:21 3324416 ----a-w- c:\windows\system32\atiumdva.dll
2010-09-03 21:54 . 2008-03-09 19:32 3107788 ----a-w- c:\windows\system32\atiumdva.dat
2010-09-03 21:54 . 2010-08-04 01:49 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2010-09-03 21:54 . 2008-03-09 20:00 253952 ------w- c:\windows\system32\Ati2evxx.dll
2010-09-03 21:54 . 2008-03-09 19:59 655360 ------w- c:\windows\system32\Ati2evxx.exe
2010-09-03 21:54 . 2008-03-04 17:02 90112 ----a-w- c:\windows\system32\atibrtmon.exe
2010-09-02 15:13 . 2010-09-02 15:13 -------- d-----w- c:\program files\Seagate
2010-09-02 09:03 . 2001-07-03 11:13 81920 ----a-w- c:\windows\system32\ps2.EXE
2010-09-02 09:02 . 2010-09-02 09:03 -------- d-----w- C:\hp
2010-09-02 09:02 . 2001-06-04 04:00 14112 ----a-w- c:\windows\system32\drivers\PS2.sys
2010-09-02 08:51 . 2009-10-05 07:31 1221632 ----a-w- c:\windows\system32\drivers\athr.sys
2010-09-02 08:51 . 2009-10-05 07:31 1221632 ----a-w- c:\windows\system32\athr.sys
2010-09-02 08:51 . 2010-09-02 08:51 -------- d-----w- c:\windows\Options
2010-09-02 08:51 . 2010-09-02 08:51 -------- d-----w- c:\program files\Atheros
2010-09-02 08:51 . 2010-09-02 08:51 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-02 08:50 . 2010-09-02 08:51 -------- d-----w- c:\programdata\Atheros
2010-09-02 08:48 . 2010-09-02 08:46 8 ----a-w- c:\windows\system32\drivers\rtkhdaud.dat
2010-09-02 08:48 . 2010-09-02 08:46 520 ----a-w- c:\windows\system32\drivers\RTEQEX2.dat
2010-09-02 08:48 . 2010-09-02 08:46 520 ----a-w- c:\windows\system32\drivers\RTEQEX1.dat
2010-09-02 08:48 . 2010-09-02 08:46 520 ----a-w- c:\windows\system32\drivers\RTEQEX0.dat
2010-09-02 08:48 . 2010-09-02 08:46 189796 ----a-w- c:\windows\system32\drivers\RTConvEQ.dat
2010-09-02 08:48 . 2010-09-02 08:46 1112 ----a-w- c:\windows\system32\drivers\RtHdatEx.dat
2010-09-02 08:48 . 2010-09-02 08:48 -------- d-----w- c:\program files\Realtek
2010-09-02 08:48 . 2010-09-02 08:50 -------- d--h--w- c:\program files\Temp
2010-09-01 23:27 . 2010-09-01 23:27 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2010-09-01 23:25 . 2010-09-01 23:25 -------- d-----w- c:\program files\MSXML 4.0
2010-09-01 23:18 . 2010-09-01 23:18 -------- d-----w- c:\program files\Microsoft
2010-09-01 23:17 . 2010-09-01 23:17 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-09-01 23:17 . 2010-09-01 23:18 -------- d-----w- c:\program files\Windows Live
2010-09-01 23:14 . 2010-09-01 23:14 -------- d-----w- c:\program files\Common Files\Windows Live
2010-09-01 22:44 . 2010-09-01 22:56 -------- d-----w- c:\program files\Nero
2010-09-01 22:44 . 2010-09-01 23:05 -------- d-----w- c:\program files\Common Files\Nero
2010-09-01 22:44 . 2010-09-01 22:51 -------- d-----w- c:\programdata\Nero
2010-09-01 22:16 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll
2010-09-01 22:16 . 2008-11-10 09:41 32656 ----a-w- c:\windows\system32\msonpmon.dll
2010-09-01 22:16 . 2006-10-26 17:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2010-09-01 22:15 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-01 22:15 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-01 22:15 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-01 22:15 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-01 22:15 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-01 22:14 . 2010-09-01 23:28 -------- d-----w- c:\program files\Microsoft Works
2010-09-01 22:11 . 2010-09-02 08:13 -------- d-----w- c:\program files\Microsoft.NET
2010-09-01 22:11 . 2010-09-01 22:11 -------- d-----w- c:\windows\PCHEALTH
2010-09-01 22:08 . 2010-09-01 22:08 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2010-09-01 22:06 . 2010-09-18 10:00 -------- d-----w- c:\programdata\Microsoft Help
2010-09-01 22:06 . 2010-09-01 22:06 -------- d-----r- C:\MSOCache
2010-09-01 22:05 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-09-01 21:47 . 2010-09-01 21:47 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-09-01 21:47 . 2010-09-01 21:47 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-09-01 21:46 . 2010-09-01 21:47 -------- d-----w- c:\programdata\DAEMON Tools Lite
2010-09-01 21:45 . 2010-09-01 21:45 -------- d-----w- c:\program files\Common Files\Adobe
2010-09-01 21:43 . 2010-09-01 21:43 -------- d-----w- c:\windows\system32\Macromed
2010-09-01 21:42 . 2010-09-01 21:06 -------- d-----w- c:\windows\Panther
2010-09-01 21:42 . 2010-09-01 23:46 -------- d-----w- C:\Boot
2010-09-01 21:33 . 2010-09-01 21:33 932368 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\profiles-1-6.dll
2010-09-01 21:33 . 2010-09-01 21:33 678416 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\content_interpreter-1-1.dll
2010-09-01 21:33 . 2010-09-01 21:33 604688 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\gsg-3-9.dll
2010-09-01 21:33 . 2010-09-01 21:33 522768 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\database-1-5.dll
2010-09-01 21:33 . 2010-09-01 21:33 1096208 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\KasFlt\Plugins\filtration-4-6.dll
2010-09-01 21:32 . 2010-09-01 21:32 15376 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\clldr.dll
2010-09-01 21:32 . 2010-09-01 21:32 170584 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\prloader.dll
2010-09-01 21:32 . 2010-09-01 21:32 311680 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\avp.exe
2010-09-01 21:32 . 2010-09-01 21:32 59920 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\mzvkbd.dll
2010-09-01 21:32 . 2010-09-01 21:32 264720 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\klwtbbho.dll
2010-09-01 21:32 . 2010-09-01 21:32 129624 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\mmpprtc.dll
2010-09-01 21:32 . 2010-09-01 21:32 109072 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\mzvkbd3.dll
2010-09-01 21:32 . 2010-09-01 21:32 280592 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\sys\i386\6.0\klif.sys
2010-09-01 21:32 . 2010-09-01 21:32 128016 ----a-w- c:\programdata\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.459\sys\i386\kl1.sys
2010-09-01 21:24 . 2010-09-01 21:24 604140 --sha-w- c:\windows\system32\drivers\ISwift3.dat
2010-09-01 21:22 . 2010-09-01 21:32 97549 ----a-w- c:\windows\system32\drivers\klick.dat
2010-09-01 21:22 . 2010-09-01 21:32 113933 ----a-w- c:\windows\system32\drivers\klin.dat
2010-09-01 21:22 . 2010-06-14 06:12 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-09-01 21:20 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll
2010-09-01 21:19 . 2010-01-18 23:29 85504 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-09-01 21:19 . 2010-01-18 23:29 85504 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-09-01 21:19 . 2010-01-18 23:29 365568 ----a-w- c:\windows\system32\secproc_isv.dll
2010-09-01 21:19 . 2010-01-18 23:29 369152 ----a-w- c:\windows\system32\secproc.dll
2010-09-01 21:19 . 2010-01-18 23:28 324608 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-09-01 21:19 . 2010-01-18 23:28 277504 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-09-01 21:19 . 2010-01-18 23:28 320512 ----a-w- c:\windows\system32\RMActivate.exe
2010-09-01 21:19 . 2010-01-18 23:28 280064 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2010-09-01 21:19 . 2010-04-23 07:13 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-01 21:19 . 2010-06-16 05:48 224256 ----a-w- c:\windows\system32\schannel.dll
2010-09-01 21:19 . 2010-02-27 07:32 221696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2010-09-01 21:19 . 2010-02-27 07:32 95744 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2010-09-01 21:19 . 2010-02-27 07:32 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-09-01 21:18 . 2010-06-19 04:07 2326016 ----a-w- c:\windows\system32\win32k.sys
2010-09-01 21:13 . 2010-05-27 07:24 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-09-01 21:13 . 2010-05-27 03:49 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-09-01 21:13 . 2009-10-19 14:10 70656 ----a-w- c:\windows\system32\fontsub.dll
2010-09-01 21:11 . 2010-05-21 12:14 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-09-01 21:10 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll
2010-09-01 21:10 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2010-09-01 21:06 . 2010-09-01 23:20 -------- d-----w- c:\users\Lulù
2010-09-01 20:58 . 2010-09-11 20:45 -------- d-----w- c:\windows\system32\wbem\Performance
2010-09-01 20:46 . 2010-09-01 20:46 0 ----a-w- c:\windows\ativpsrm.bin
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-18 10:40 . 2010-09-01 21:21 -------- d-----w- c:\programdata\Kaspersky Lab
2010-09-11 20:45 . 2009-07-14 08:21 698570 ----a-w- c:\windows\system32\perfh010.dat
2010-09-11 20:45 . 2009-07-14 08:21 127764 ----a-w- c:\windows\system32\perfc010.dat
2010-09-06 15:26 . 2010-09-06 15:26 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2010-09-02 08:52 . 2010-09-02 08:52 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_SynTP_01009.Wdf
2010-09-02 08:47 . 2007-10-01 12:59 1769984 ----a-w- c:\windows\system32\drivers\snp2uvc.sys
2010-09-02 08:47 . 2007-09-15 07:22 371 ----a-w- c:\windows\Uninstvga.bat
2010-09-02 08:47 . 2007-09-15 07:22 372 ----a-w- c:\windows\Uninstsxga.bat
2010-09-02 08:47 . 2007-09-15 07:01 386 ----a-w- c:\windows\Uninstsxga.reg
2010-09-02 08:47 . 2007-09-15 07:01 384 ----a-w- c:\windows\Uninstvga.reg
2010-09-02 08:47 . 2007-05-09 13:16 28160 ----a-w- c:\windows\system32\drivers\sncduvc.sys
2010-09-02 08:47 . 2006-11-23 20:20 11776 ----a-w- c:\windows\DrvInst.exe
2010-09-01 22:35 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-09-01 22:13 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2010-09-01 21:32 . 2009-05-24 13:30 128016 ----a-w- c:\windows\system32\drivers\kl1.sys
2010-09-01 21:21 . 2010-09-01 21:21 -------- d-----w- c:\program files\Kaspersky Lab
2010-09-01 21:20 . 2010-09-01 21:20 -------- d-----w- c:\programdata\Kaspersky Lab Setup Files
2010-09-01 21:05 . 2010-09-01 21:05 -------- d-sh--we c:\programdata\Preferiti
2010-09-01 21:05 . 2010-09-01 21:05 -------- d-sh--we c:\programdata\Modelli
2010-09-01 21:05 . 2010-09-01 21:05 -------- d-sh--we c:\programdata\Menu Avvio
2010-09-01 21:05 . 2010-09-01 21:05 -------- d-sh--we c:\programdata\Documenti
2010-09-01 21:05 . 2010-09-01 21:05 -------- d-sh--we c:\programdata\Dati applicazioni
2010-09-01 21:05 . 2010-09-01 21:05 -------- d-sh--we c:\program files\File comuni
2010-09-01 20:45 . 2010-09-01 20:45 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-08-04 02:21 . 2010-08-04 02:21 6096384 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2010-08-04 01:55 . 2010-08-04 01:55 143360 ----a-w- c:\windows\system32\atiapfxx.exe
2010-08-04 01:54 . 2010-08-04 01:54 519680 ----a-w- c:\windows\system32\aticfx32.dll
2010-08-04 01:52 . 2010-08-04 01:52 450560 ----a-w- c:\windows\system32\ATIDEMGX.dll
2010-08-04 01:51 . 2010-08-04 01:51 380928 ----a-w- c:\windows\system32\atieclxx.exe
2010-08-04 01:51 . 2010-08-04 01:51 176128 ----a-w- c:\windows\system32\atiesrxx.exe
2010-08-04 01:50 . 2010-08-04 01:50 159744 ----a-w- c:\windows\system32\atitmmxx.dll
2010-08-04 01:49 . 2010-08-04 01:49 15845888 ----a-w- c:\windows\system32\atioglxx.dll
2010-08-04 01:49 . 2010-08-04 01:49 278528 ----a-w- c:\windows\system32\Oemdspif.dll
2010-08-04 01:49 . 2010-08-04 01:49 11776 ----a-w- c:\windows\system32\atimuixx.dll
2010-08-04 01:46 . 2009-07-13 22:09 3899392 ----a-w- c:\windows\system32\atidxx32.dll
2010-08-04 01:26 . 2010-08-04 01:26 46080 ----a-w- c:\windows\system32\aticalrt.dll
2010-08-04 01:25 . 2010-08-04 01:25 44032 ----a-w- c:\windows\system32\aticalcl.dll
2010-08-04 01:24 . 2010-08-04 01:24 4341248 ----a-w- c:\windows\system32\aticaldd.dll
2010-08-04 01:23 . 2010-08-04 01:23 65536 ----a-w- c:\windows\system32\coinst.dll
2010-08-04 01:16 . 2010-08-04 01:16 241664 ----a-w- c:\windows\system32\atiadlxx.dll
2010-08-04 01:15 . 2010-08-04 01:15 12800 ----a-w- c:\windows\system32\atiglpxx.dll
2010-08-04 01:15 . 2010-08-04 01:15 16896 ----a-w- c:\windows\system32\atigktxx.dll
2010-08-04 01:15 . 2010-08-04 01:15 214016 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2010-08-04 01:15 . 2010-08-04 01:15 30208 ----a-w- c:\windows\system32\atiuxpag.dll
2010-08-04 01:14 . 2010-08-04 01:14 27648 ----a-w- c:\windows\system32\atiu9pag.dll
2010-08-04 01:14 . 2010-08-04 01:14 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2010-08-04 01:09 . 2010-08-04 01:09 52736 ----a-w- c:\windows\system32\atimpc32.dll
2010-08-04 01:09 . 2010-08-04 01:09 52736 ----a-w- c:\windows\system32\amdpcom32.dll
2010-07-29 06:30 . 2010-09-01 21:21 197632 ----a-w- c:\windows\system32\ir32_32.dll
2010-07-29 06:30 . 2010-09-01 21:21 82944 ----a-w- c:\windows\system32\iccvid.dll
2010-06-30 06:25 . 2010-09-01 21:20 978432 ----a-w- c:\windows\system32\wininet.dll
2010-06-22 02:47 . 2010-09-01 21:20 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-06-22 02:47 . 2010-09-01 21:20 307200 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-06-22 02:47 . 2010-09-01 21:20 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-08-03 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\KASPER~1\KASPER~1\mzvkbd3.dll c:\progra~1\KASPER~1\KASPER~1\kloehk.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2009-12-11 13:57 948672 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-12-21 23:57 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD]
2001-07-06 11:56 61440 ----a-w- c:\hp\kbd\kbd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2010-04-16 20:11 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PS2]
2001-07-03 11:13 81920 ----a-w- c:\windows\System32\ps2.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-12-15 33808]
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-09-01 691696]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2009-05-15 21008]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-08-04 176128]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-08-04 6096384]
R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-08-04 214016]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-05-16 19472]
R3 SiSGbeLH;Driver NDIS 6.0 dispositivo Ethernet SiS191/SiS190;c:\windows\system32\DRIVERS\SiSGB6.sys [2009-07-13 48128]
.
.
------- Scansione supplementare -------
.
uStart Page =
hxxp://www.google.it/IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
HKLM-RunOnce-<NO NAME> - (no file)
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Ora fine scansione: 2010-09-18 12:51:29
ComboFix-quarantined-files.txt 2010-09-18 10:51
Pre-Run: 80.581.959.680 byte disponibili
Post-Run: 80.527.396.864 byte disponibili
- - End Of File - - 58B3F3CE82DE2885CEDF7A53B70F6BFD
Esegui 
![[nonono]](http://www.megalab.it/forum/images/smilies/Nonsonodaccordo.gif "Non sono d'accordo!")
